Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."
History

Mon, 21 Oct 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft ie
Weaknesses CWE-416
CPEs cpe:2.3:a:microsoft:ie:6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:8:*:*:*:*:*:*:*
Vendors & Products Microsoft ie
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2010-01-22T21:20:00

Updated: 2024-10-21T16:43:33.939Z

Reserved: 2010-01-07T00:00:00

Link: CVE-2010-0248

cve-icon Vulnrichment

Updated: 2024-08-07T00:45:10.627Z

cve-icon NVD

Status : Modified

Published: 2010-01-22T22:00:00.583

Modified: 2024-11-21T01:11:50.587

Link: CVE-2010-0248

cve-icon Redhat

No data.